Spamfilter changelog

spamfilter20050626 Changelog

Close this window to continue.

There is a bug in older versions of the /etc/init.d/amavisd-new script (used for Bayes maintenance). Please repair your copy if necessary. The command provided to su must be quoted, and specified with su's -c option. So as an example, this:
su - amavis -- /usr/bin/sa-learn --sync --force-expire >/dev/null
would change to this:
su - amavis -c '/usr/bin/sa-learn --sync --force-expire >/dev/null'

20060627
Updated for amavisd-new 2.4.2.

20060617
Made a few notes regarding sa-update.
Removed the BitDefender section. The previous license agreement was ambiguous, but now it is not. The free version cannot be used on a server.

20060508
Updated for amavisd-new 2.4.1.

20060410
We are now using amavisd-new 2.4.0. If you are running Sarge 'stable' as a top priority, please install Compress::Zlib (Compress-Zlib-1.41.tar.gz) from source (instructions included) prior to installing amavisd-new version 2.4.0. This also applies to those who installed version 2.3.2 using the older document and would simply like to replace the 2.3.2 amavisd-new program with 2.4.0. The older version of this document (that used amavisd-new 2.3.2) is now in the archives. Several changes were made to account for peculiarities in the Etch beta 2 CD.

20060330
If logging is not desired for dccifd, also comment out DCCIFD_LOGDIR="$DCCM_LOGDIR" in dcc_conf.
We manually install Compress::Zlib in order to get a recent version and to enable us to ignore the Debian dependencies which would unnecessarily upgrade Perl and libc6. Making this change will allow us to use amavisd-new 2.3.3 or 2.4.0.

20060324
Added notes on repairing GRUB boot record after a disk clone.

20060119
Updated link to new 31r1a Sarge netinst CD.

20060115
I no longer recommend djbdns, I now offer instructions to install bind9.

20060104
A new version of amavisd-new is available in the "testing" branch, we are not going to use it however.

20051222
In the supplied amavisd.conf I commented out the existing $unix_socketname setting and added:
$unix_socketname = undef;
and also:
$sa_timeout = 60;

20051123
Added instructions in the "Set up security reports" section to disable some logcheck log reports produced by amavisd-new.

20051120
Added two new stand-alone documents:
Getting Maia Mailguard installed on a Debian Sarge gateway email server
Additional anti-UCE settings for our Debian Anti-Spam Anti-Virus Gateway Email Server.

20051115
Revised ClamAV section. We now use Debian Volatile to install ClamAV.

20051022
Noted changes required if using SpamAssassin 3.1.x

20050904
Moved reject_unauth_pipelining from smtpd_data_restrictions, to the end of smtpd_recipient_restrictions,
then removed smtpd_data_restrictions.

20050831
Added notification to admin when a banned file is received: '$banned_admin = "postmaster\@$mydomain";'

20050801
When setting up the transport table, and you want to send to a hostname instead of an IP address, you should enclose the hostname in square brackets to avoid mail loops due to MX lookups (i.e. smtp:[exchange.domain1.com]). The brackets disable MX lookups.

20050718
Replaced the generic /etc/postfix/access file with more a specific /etc/postfix/sender_access file.
Changed pin priority of stable from 500 to 600

20050712
The Postfix Anti-Spam settings have changed. I now recommend:
smtpd_sender_restrictions =
check_sender_access hash:/etc/postfix/access,
reject_non_fqdn_sender,
reject_unknown_sender_domain
and
smtpd_recipient_restrictions =
permit_mynetworks,
reject_unauth_destination
This enables us to allow certain senders with bogus domains without allowing them to relay through us.

20050626
This is a new (beta) document that uses Debian Sarge (stable) and amavisd-new 2.3.2

http://verchick.com/mecham/public_html/spam/spamfilter20050626.html